Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #include "exp.h" // private header for the NT Executive module
- /* the following function is mentioned in the following files:
- /ntos/ke/i386/systable.asm
- /ntos/ke/i386/sysstubs.asm
- /ntos/init/ntoskrnl.src
- /ntos/ex/exp.h
- /ntos/ex/BUILD/makefile
- */
- /*VOID outb(UINT16 port, UINT8 val)
- {
- __asm {
- mov dx, port
- mov eax, val
- out dx, eax
- }
- }*/
- NTSTATUS NtYiffDaddy(int count)
- {
- DbgPrint("NT : NtYiffDaddy has been called!");
- //int a;
- //LARGE_INTEGER time;
- LARGE_INTEGER max_addr;
- max_addr.HighPart = 0x7FFF;
- max_addr.LowPart = 0xFFFF;
- PVOID base = MmAllocateContiguousMemory(40, max_addr); // allocate 40 bytes for the KTIMER object and get the base address.
- //DbgPrint("Memory has been allocated");
- //PAGED_CODE(); // check if our irql allows us to page this routine, if not we bug check
- //for (a = 0; a <= 40; a++) {
- // *(timerbase + a) = 0x00;
- //}
- //DbgPrint("Memory has been wiped");
- //KeInitializeTimer(timerbase);
- //time.HighPart = 0x186A0;
- //time.LowPart = 0x0;
- //KeSetTimer(timerbase, time, 0);
- MmFreeContiguousMemory(base);
- DbgPrint("Memory has been freed");
- /*if (InbvIsBootDriverInstalled())
- {
- InbvAcquireDisplayOwnership();
- InbvResetDisplay();
- InbvSolidColorFill(0, 0, 639, 479, 4);
- InbvSetTextColor(15);
- InbvInstallDisplayStringFilter(0);
- InbvEnableDisplayString(1);
- InbvSetScrollRegion(0, 0, 639, 475);
- InbvDisplayString("UWU PAYLOAD\n");
- HalDisplayString("U HAVE NO CHOICE UWU");
- }
- */
- KeBugCheck(0x69696969); // perform all module shutdown
- /*
- INT32 i;
- PAGED_CODE(); // since we're going in a loop, check if our irql allows us to page this routine. this is to prevent a memory leak. if we can't page the routine the kernel will bsod
- for (i = 0; i < count; ++i) {
- DbgPrint("OWO: Pounces on bulge uwu [%d]", i);
- }
- */
- return STATUS_SUCCESS;
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement